Updated on 2024-10-25 GMT+08:00

Creating an IoTDB Permission Role

Create and configure an IoTDB role on Manager as an MRS cluster administrator. An IoTDB role can be configured with IoTDB administrator permissions or a common user's permissions to read, write, or delete data.

Prerequisites

  • The MRS cluster administrator has understood service requirements.
  • You have installed the IoTDB client.

Procedure

  1. Log in to FusionInsight Manager, choose System > Permission > Role.
  2. On the displayed page, click Create Role and specify Role Name and Description.
  3. Configure Configure Resource Permission. For details, see Table 1.

    IoTDB permissions:

    • Common User Privileges: includes data operation permissions. Permissions on the IoTDB root directory, storage group, and any node path from a storage group to a time series can be granted selectively. The minimum permissions are read, write, modify, and delete permissions on the time series.
    • IoTDB Admin Privilege: includes all permissions in Table 1.
    Table 1 Configuring a role

    Scenario

    Role Authorization

    Configuring the IoTDB administrator permission

    In the Configure Resource Permission table, choose Name of the desired cluster > IoTDB and select IoTDB Admin Privilege.

    Configuring the permission for users to create storage groups

    1. In the Configure Resource Permission table, choose Name of the desired cluster > IoTDB > Common User Privileges.
    2. Select Set StorageGroup for the root directory.
    3. A user with this permission can create storage groups in the root directory.

    Configuring the permission for users to create time series

    1. In the Configure Resource Permission table, choose Name of the desired cluster > IoTDB > Common User Privileges.
    2. Select Create for the root directory. You will have the permission to create time series in all recursive paths in the root directory.
    3. Click root to go to the storage group page and select the Create permission for the corresponding storage group. You will have the permission to create time series in all recursive paths in the storage group directory.

    Configuring the permission for users to modify time series

    1. In the Configure Resource Permission table, choose Name of the desired cluster > IoTDB > Common User Privileges.
    2. Select Alter for the root directory. You will have the permission to modify time series in all recursive paths in the root directory.
    3. Click root to go to the storage group page and select the Alter permission for the corresponding storage group. You will have the permission to modify time series in all recursive paths of the storage group.
    4. Click the specified storage group to go the time series page and select the Alter permission for the corresponding time series. You will have the permission to modify the time series.

    Configuring the permission for users to insert data into time series

    1. In the Configure Resource Permission table, choose Name of the desired cluster > IoTDB > Common User Privileges.
    2. Select Insert for the root directory. You will have the permission to insert data into the time series in all recursive paths in the root directory.
    3. Click root to go to the storage group page and select the Insert permission for the corresponding storage group. You will have the permission to insert data into the time series in all recursive paths of the storage group.
    4. Click the specified storage group to go the time series page and select the Insert permission for the corresponding time series. You will have the permission to insert data into the time series.

    Configuring the permission for users to read data from time series

    1. In the Configure Resource Permission table, choose Name of the desired cluster > IoTDB > Common User Privileges.
    2. Select Read for the root directory. You will have the permission to read data from the time series in all recursive paths in the root directory.
    3. Click root to go to the storage group page and select the Read permission for the corresponding storage group. You will have the permission to read data from the time series in all recursive paths of the storage group.
    4. Click the specified storage group to go the time series page and select the Read permission for the corresponding time series. You will have the permission to read data from the time series.

    Configuring the permission for users to delete time series

    1. In the Configure Resource Permission table, choose Name of the desired cluster > IoTDB > Common User Privileges.
    2. Select Delete for the root directory. You will have the permission to delete data or time series in all recursive paths in the root directory.
    3. Click root to go to the storage group page and select the Delete permission for the corresponding storage group. You will have the permission to delete data or time series in all recursive paths of the storage group.
    4. Click the specified storage group to go the time series page and select the Delete permission for the corresponding time series. You will have the permission to delete data from the time series or delete the time series.